Hello tor-dev,
Here goes the status report for the past 2 weeks:
- still working at [1] in public branch [2]
- rewrote how the filters work, such that a filter currently is an array of
function pointers, each function being responsible of setting up the
parameter filter for a syscall; also added support such that in the future
it is a struct containing the array of function pointers and a linked list
of parameters associated with the filter;
- I have updated the filters which proved to be a bit more challenging than
expected mainly due to the multiple worker thread processes created with
clone, which are harder to follow with strace;
- as of today, the latest version I have pushed has a more restrictive
parameter filter which works for both a normal and ORPort launches.
TODO:
- fix open syscall problem for file names due to external library opens
- investigate socketcall syscalls' parameters failure..
- finish support for multiple filters (beginning of stage 3)
- fine-tune filters a bit (end of stage 2)
More details may be found here [1].
Looking forward to some feedback, if you happen to have any!
References:
[1] https://trac.torproject.org/projects/tor/ticket/9249
[2]
https://github.com/cristiantoader/tor-gsoc-capabilities/tree/gsoc-cap-stage2
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.torproject.org/pipermail/tor-dev/attachments/20130809/4ce972b4/attachment.html>